hashlookup / hashlookup-forensic-analyser
Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https://circl.lu/services/hashlookup/
☆128Updated last year
Alternatives and similar repositories for hashlookup-forensic-analyser:
Users that are interested in hashlookup-forensic-analyser are comparing it to the libraries listed below
- ☆86Updated 4 months ago
- A pySigma wrapper and langchain toolkit for automatic rule creation/translation☆72Updated this week
- Collection of Jupyter Notebooks by @fr0gger_☆145Updated 4 months ago
- Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, ASN, DNS, WhoIs, Shodan InternetDB and Threat Indi…☆100Updated 3 months ago
- Digital Forensics Artifacts Knowledge Base☆76Updated 8 months ago
- BlackBerry Threat Research & Intelligence☆95Updated last year
- CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition☆62Updated 2 years ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆146Updated last year
- Python library for threat intelligence☆81Updated this week
- Volatile Artifact Collector collects a snapshot of volatile data from a system. It tells you what is happening on a system, and is of par…☆252Updated 2 months ago
- An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.☆51Updated 2 years ago
- A toolkit for the post-mortem examination of Docker containers from forensic HDD copies☆97Updated 11 months ago
- The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…☆154Updated 2 years ago
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆115Updated last year
- Rip Raw is a small tool to analyse the memory of compromised Linux systems.☆130Updated 2 years ago
- This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.☆104Updated last month
- A collection of tips for using MISP.☆74Updated last month
- A community event for security researchers to share their favorite notebooks☆107Updated 11 months ago
- ☆116Updated last year
- ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit l…☆153Updated last month
- A python script developed to process Windows memory images based on triage type.☆260Updated last year
- LOKI2 - Simple IOC and YARA Scanner☆84Updated 5 months ago
- An opensource sigma conversion tool built using pysigma☆112Updated 3 weeks ago
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆38Updated 8 months ago
- acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.☆92Updated this week
- The Threat Actor Profile Guide for CTI Analysts☆101Updated last year
- Repository of public reference frameworks for the DFIR community.☆109Updated last year
- A tool that allows you to document and assess any security automation in your SOC☆43Updated 2 months ago
- Collection of scripts provided for public use☆34Updated 2 months ago